$ rpki-client -vvf rpki.apnic.net/member_repository/A9149905/394D064A1D9B11E2BE12EF8808B02CD2/y7aOmQU8HeJHirvi3_KrzsDRsUg.mft File: y7aOmQU8HeJHirvi3_KrzsDRsUg.mft (raw, json) Hash identifier: bRkLx0zojZO5mnDYdZl+A46hwx2TgD+vx8+NiH3ZxJ4= Subject key identifier: 70:9E:F7:17:71:A3:1A:73:F9:A6:EB:52:2E:C8:9A:80:33:36:AE:F0 Authority key identifier: CB:B6:8E:99:05:3C:1D:E2:47:8A:BB:E2:DF:F2:AB:CE:C0:D1:B1:48 Certificate issuer: /CN=A9149905/serialNumber=CBB68E99053C1DE2478ABBE2DFF2ABCEC0D1B148 Certificate serial: 342C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y7aOmQU8HeJHirvi3_KrzsDRsUg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9149905/394D064A1D9B11E2BE12EF8808B02CD2/y7aOmQU8HeJHirvi3_KrzsDRsUg.mft Manifest number: 3427 Signing time: Fri 22 Nov 2024 14:57:58 +0000 Manifest this update: Fri 22 Nov 2024 14:57:57 +0000 Manifest next update: Fri 29 Nov 2024 14:57:57 +0000 Files and hashes: 1: y7aOmQU8HeJHirvi3_KrzsDRsUg.crl (hash: IpIEm9XGYmq7xHXqPY91YiiuNxEy99iMxsXHFQEwEy4=) 2: A6D6CA7E022C11EBAC47A831C4F9AE02.roa (hash: zCjW74BNINc4Oe8jK6oFEsAHN/HQVGCYlLcNtLolElw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9149905/394D064A1D9B11E2BE12EF8808B02CD2/y7aOmQU8HeJHirvi3_KrzsDRsUg.crl rsync://rpki.apnic.net/member_repository/A9149905/394D064A1D9B11E2BE12EF8808B02CD2/y7aOmQU8HeJHirvi3_KrzsDRsUg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y7aOmQU8HeJHirvi3_KrzsDRsUg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 14:57:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13356 (0x342c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9149905/serialNumber=CBB68E99053C1DE2478ABBE2DFF2ABCEC0D1B148 Validity Not Before: Nov 22 14:57:57 2024 GMT Not After : Nov 29 14:57:57 2024 GMT Subject: CN=67409bf5-2b80 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:5e:8b:59:29:a4:06:ee:b0:62:bb:b3:6d:d9: 43:56:cb:e7:27:4d:5b:84:9b:ed:35:c4:c8:67:13: fe:a6:31:76:75:b9:64:64:12:ea:58:8e:23:f9:df: 70:4d:29:f5:ee:61:bf:a4:63:32:6a:b8:75:5b:ff: 0f:26:52:84:bd:e9:a1:30:92:f9:9d:e8:c3:64:48: 76:e5:6f:02:a4:53:0d:1d:21:e1:01:32:91:ab:50: c2:ba:15:95:ee:be:27:8e:05:cc:85:78:c9:bf:dc: 75:dc:5e:41:80:4b:a9:5a:41:7b:18:15:47:e4:38: b2:77:17:63:81:f3:62:c1:94:b4:0d:32:37:ab:37: 05:15:b5:2c:e9:d1:4b:64:d7:2f:21:57:a0:8e:2c: e4:b9:09:f5:77:d1:01:1f:9e:83:42:8c:26:8e:79: 49:df:3c:11:17:1e:61:9b:cd:95:66:a6:af:a6:5c: 00:2d:4a:95:f6:f4:db:1a:8f:cd:87:b6:54:bb:d8: 47:1b:ef:89:cd:ca:fe:1d:fc:73:f2:e6:cf:71:3e: 99:c7:b6:8b:c8:79:f4:4b:72:de:d7:1c:77:96:1e: 56:99:76:8c:9e:23:2b:15:8d:2c:16:c2:8a:c8:12: a4:72:9a:be:cf:3e:2c:15:64:73:4a:01:8f:a7:97: 01:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:9E:F7:17:71:A3:1A:73:F9:A6:EB:52:2E:C8:9A:80:33:36:AE:F0 X509v3 Authority Key Identifier: keyid:CB:B6:8E:99:05:3C:1D:E2:47:8A:BB:E2:DF:F2:AB:CE:C0:D1:B1:48 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9149905/394D064A1D9B11E2BE12EF8808B02CD2/y7aOmQU8HeJHirvi3_KrzsDRsUg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y7aOmQU8HeJHirvi3_KrzsDRsUg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9149905/394D064A1D9B11E2BE12EF8808B02CD2/y7aOmQU8HeJHirvi3_KrzsDRsUg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1a:59:f2:48:42:ba:6f:db:d3:03:85:ec:d3:b0:9e:11:8c:27: ab:2a:70:42:86:3d:21:a4:bc:0a:a6:28:d5:b6:2d:a8:0f:a1: fa:ed:c4:e4:50:c2:50:5e:2e:4d:75:3a:3f:ab:08:d4:79:8f: 9b:c5:20:9e:6e:bc:47:de:89:58:90:01:81:ce:32:b6:f7:1d: 73:4a:df:66:d2:91:66:4f:bf:5c:d6:e3:67:1d:a0:34:69:0b: e5:07:56:9e:2e:46:f3:bf:2a:62:09:7f:f8:a8:cc:a7:7d:3d: 8b:dd:a5:b6:2f:ed:2b:39:16:98:de:50:a4:90:2c:b1:ae:09: d2:10:90:01:cd:75:b1:2e:cc:a7:36:f2:5e:1c:41:80:6f:58: 52:99:5a:c0:37:67:4e:ba:8f:14:36:93:3e:eb:44:e4:fa:19: da:31:0a:f9:5e:ea:f4:42:d9:ae:59:d6:c4:95:21:08:61:df: c0:b8:13:e1:ab:fe:41:44:65:45:68:77:de:e9:ec:1b:c2:3b: 0c:e9:0a:fb:62:c5:8b:40:c7:b7:27:dc:cd:43:27:67:0c:71: b7:01:15:96:cb:4e:3c:3e:06:ee:c1:4d:ae:c8:7b:89:26:65: 4c:48:a5:8d:2e:98:c7:d4:37:df:cb:31:3b:3c:1e:18:fe:ad: 58:31:9d:9f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNCwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDk5MDUxMTAvBgNVBAUTKENCQjY4RTk5MDUzQzFERTI0NzhBQkJFMkRGRjJBQkNF QzBEMUIxNDgwHhcNMjQxMTIyMTQ1NzU3WhcNMjQxMTI5MTQ1NzU3WjAYMRYwFAYD VQQDEw02NzQwOWJmNS0yYjgwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvF6LWSmkBu6wYruzbdlDVsvnJ01bhJvtNcTIZxP+pjF2dblkZBLqWI4j+d9w TSn17mG/pGMyarh1W/8PJlKEvemhMJL5nejDZEh25W8CpFMNHSHhATKRq1DCuhWV 7r4njgXMhXjJv9x13F5BgEupWkF7GBVH5DiydxdjgfNiwZS0DTI3qzcFFbUs6dFL ZNcvIVegjizkuQn1d9EBH56DQowmjnlJ3zwRFx5hm82VZqavplwALUqV9vTbGo/N h7ZUu9hHG++Jzcr+Hfxz8ubPcT6Zx7aLyHn0S3Le1xx3lh5WmXaMniMrFY0sFsKK yBKkcpq+zz4sFWRzSgGPp5cBMQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHCe9xdx oxpz+abrUi7ImoAzNq7wMB8GA1UdIwQYMBaAFMu2jpkFPB3iR4q74t/yq87A0bFI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0OTkwNS8zOTREMDY0QTFE OUIxMUUyQkUxMkVGODgwOEIwMkNEMi95N2FPbVFVOEhlSkhpcnZpM19LcnpzRFJz VWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3k3YU9tUVU4SGVKSGlydmkzX0tyenNEUnNVZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 OTkwNS8zOTREMDY0QTFEOUIxMUUyQkUxMkVGODgwOEIwMkNEMi95N2FPbVFVOEhl SkhpcnZpM19LcnpzRFJzVWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAaWfJIQrpv29MDhezTsJ4RjCerKnBChj0hpLwKpijVti2oD6H67cTk UMJQXi5NdTo/qwjUeY+bxSCebrxH3olYkAGBzjK29x1zSt9m0pFmT79c1uNnHaA0 aQvlB1aeLkbzvypiCX/4qMynfT2L3aW2L+0rORaY3lCkkCyxrgnSEJABzXWxLsyn NvJeHEGAb1hSmVrAN2dOuo8UNpM+60Tk+hnaMQr5Xur0QtmuWdbElSEIYd/AuBPh q/5BRGVFaHfe6ewbwjsM6Qr7YsWLQMe3J9zNQydnDHG3ARWWy048PgbuwU2uyHuJ JmVMSKWNLpjH1DffyzE7PB4Y/q1YMZ2f -----END CERTIFICATE-----Generated at Fri Nov 22 17:55:44 2024 by rpki-client on console-fra.rpki-client.org